Security Affairs

JUNE 22, 2021

The Windows botnet has been active since late 2017, it was mainly used to mine cryptocurrency, but it was also involved in DDoS attacks in 2018. The module that implements the warm capabilities was spotted scanning the internet and performing password brute-force attacks against Windows systems with SMB port open online.

DNS 127

DNS Cryptocurrency Internet Internet 127

SC Magazine

JUNE 25, 2021

That represents a 340% increase year-over-year, a 415% increase since 2018 and accounted for about 4% of the more than 6.3 This week, cybersecurity firm Akamai said they have observed more than 246 million web application attacks levied against the gaming industry between 2019 and 2020.

Computers and Electronics 121

Computers and Electronics Media Marketing Cryptocurrency 121

CyberSecurity Insiders

NOVEMBER 11, 2021

As of the publishing of this article, BotenaGo currently has low antivirus (AV) detection rate with only 6/62 known AVs seen in VirusTotal: (Figure 1). It also has different DDoS functionality. CVE-2018-10561, CVE-2018-10562. CVE-2018-10088. 2831296: ETPRO EXPLOIT XiongMai uc-httpd RCE (CVE-2018-10088).

Malware 85

Malware IoT Firmware Authentication 85

SecureList

MAY 31, 2021

If the victim organization is slow to pay up, even though its files are encrypted and some of its confidential data has been stolen, the attackers additionally threaten to carry out a DDoS attack. In addition to DDoS attacks, it has added spam and calls to clients and partners of the victim company to its toolbox. Local threats.

Mobile 87

Mobile Adware Ransomware Malware 87

SecureList

FEBRUARY 15, 2021

The email antivirus was triggered most frequently by email messages containing members of the Trojan.Win32.Agentb A company was told to transfer a certain amount to a Bitcoin wallet to prevent a DDoS attack that the cybercriminals threatened to unleash upon it. Interestingly, the cybercriminals did not limit their threats to DDoS.

Phishing 136

Phishing Malware Scams Accountability 136

SecureList

NOVEMBER 26, 2021

The vulnerability is in MSHTML, the Internet Explorer engine. After 2018, we observed falling detection rates for FinSpy for Windows. Melcoz had been active in Brazil since at least 2018, before expanding overseas. However, it never actually went away – it was simply using various first-stage implants to hide its activities.

Malware 86

Malware Banking Energy and Utilities Accountability 86

Krebs on Security

DECEMBER 14, 2023

KrebsOnSecurity began revisiting the research into Rescator’s real-life identity in 2018, after the U.S. ChronoPay used the MegaPlan service to help manage the sprawling projects that Vrublevsky referred to internally as their “black” payment processing operations, including pirated pills, porn, Mp3s, and fake antivirus products.

Cybercrime 225

Cybercrime Accountability Advertising Computers and Electronics 225